kronosun's repositories
Amsi-Killer
Lifetime AMSI bypass
Amsi_Bypass_In_2023
Amsi Bypass payload that works on Windwos 11
Augustus
Evasive Golang Loader
Awesome-Cybersecurity-Handbooks
A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.
BlackObfuscator
Black Obfuscator is an obfuscator for Android APK DexFile, it can help developer to protect source code by control flow flattening, and make it difficult to analyze the actual program control flow.
CloakQuest3r-CloudFareIp_finder
Uncover the true IP address of websites safeguarded by Cloudflare & Others
CVE-2023-3519-citrix
RCE exploit for CVE-2023-3519
DarkWidow-dropper_PE
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+BlockDll) mitigation policy on spawned process + PPID spoofing + Api resolving from TIB + API hashing
Discord-Image-Token-Password-Grabber-Exploit-Cve-2023
Get system info (Version, CPU, GPU, RAM, IPs, BSSID, Location, Screen metrics, Installed apps)
DogeRat
A multifunctional Telegram based Android RAT without port forwarding.
Evilginx2-Phishlets
Evilginx3 Phishlets version (0.2.3 & above) Only For Testing/Learning Purposes
Hta-Exploit-Downloader-Malware-Builder
Microsoft Windows HTA (HTML Application) - Remote Code Execution
Jpg-Png-Exploit-Downloader-Fud-Cryter-Malware-Builder-Cve-2023
Vulnerability Disclosure Timeline Closer inspection of the Exploit JPG content reveals the malicious link as well as the URL Download and Execute of the tool used to generate the Exploit JPG from Python encrypted code content which we also implement in couple of our builders.
LoaderFly
助力每一位RT队员,快速生成免杀木马
MalDev
Malware?
mortar-evasion
evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
NewJarLoader
Jar loader working with all java versions
osint_stuff_tool_collection
A collection of several hundred online tools for OSINT
PDF-Silent-Exploit-2023
A Windows PDF Exploit that abuses the powershell protocol to execute payload and bat files.
PhirstPhish
A script for device code phishing
rotating-tor-http-proxy
A multi-arch image provides one HTTP proxy endpoint with many concurrent tunnels to the Tor network.
SEBUA
Social Engineering Browser Update Attack.
Slient-Doc-Pdf-Exploit-Builder-Fud-Malware-Cve
One of the most complex tasks for the cyber security expert is to ensure their malicious code goes detected by antivirus and achieves its goal.
Slient-Url-Exploit-New-Cve-Chrome-Exploit-Html-Downloader
URL Infection (Silent Java Drive By) URL Infection Exploit Silent Java Drive by downloads may happen when visiting a site, opening an e-mail message.
smsgate-python
SMSgate is an open source Python-based server for sending and especially receiving SMS using multiple GSM modems and SIM cards.
SspiUacBypass
Bypassing UAC with SSPI Datagram Contexts
Supernova-Cryptor
Real fucking shellcode encryption tool.
SuperSharpShooter
Payload Generation Framework
trufflehog-find_credentials
Find and verify credentials